Dr. Stephen Henson [Wed, 12 Sep 2007 17:46:08 +0000 (17:46 +0000)]
Add more failure testing FIPS functions, for continuous RNG, pairwise RSA/DSA.
Update fips_test_suite to use them and convert AES, DES3 and SHAx to use EVP.
Dr. Stephen Henson [Fri, 7 Sep 2007 11:24:25 +0000 (11:24 +0000)]
Update mkfipsscr.pl to handle CFB1 mode.
Andy Polyakov [Wed, 29 Aug 2007 18:51:14 +0000 (18:51 +0000)]
Remove [BL]_ENDIAN from no-asm builds.
Andy Polyakov [Mon, 27 Aug 2007 20:02:23 +0000 (20:02 +0000)]
Last change inadvertently disabled x86[_64] assembler in Windows build.
Andy Polyakov [Mon, 27 Aug 2007 16:26:37 +0000 (16:26 +0000)]
Disable non-x86[_64] assembler modules.
Andy Polyakov [Mon, 27 Aug 2007 08:57:59 +0000 (08:57 +0000)]
shlib_wrap update [from HEAD].
Andy Polyakov [Sun, 26 Aug 2007 14:57:42 +0000 (14:57 +0000)]
Framework update.
Andy Polyakov [Sun, 26 Aug 2007 14:57:10 +0000 (14:57 +0000)]
IRIX and Tru64 platform updates [from HEAD].
Andy Polyakov [Sun, 26 Aug 2007 08:51:23 +0000 (08:51 +0000)]
Short circuit ranlib in trap handler.
Andy Polyakov [Thu, 23 Aug 2007 12:13:55 +0000 (12:13 +0000)]
Engage x86_64 assembler in Win64 build.
Andy Polyakov [Thu, 23 Aug 2007 12:04:42 +0000 (12:04 +0000)]
Updates from HEAD.
Andy Polyakov [Tue, 21 Aug 2007 15:26:51 +0000 (15:26 +0000)]
Make tesfipsssl pass.
Andy Polyakov [Tue, 21 Aug 2007 14:44:13 +0000 (14:44 +0000)]
Avoid BN_CTX_free(uninitialized pointer).
Dr. Stephen Henson [Tue, 21 Aug 2007 12:57:06 +0000 (12:57 +0000)]
Update fips_dsatest to use 1024 bit key.
Dr. Stephen Henson [Sun, 19 Aug 2007 12:49:07 +0000 (12:49 +0000)]
Cleaner check of self test status.
Dr. Stephen Henson [Sat, 18 Aug 2007 02:46:11 +0000 (02:46 +0000)]
Block DH key gen for small key sizes too.
Dr. Stephen Henson [Sat, 18 Aug 2007 02:36:23 +0000 (02:36 +0000)]
Don't generate DSA keys with key size too small.
Dr. Stephen Henson [Wed, 15 Aug 2007 16:22:34 +0000 (16:22 +0000)]
Remove single DES self test vectors.
Dr. Stephen Henson [Wed, 15 Aug 2007 15:29:43 +0000 (15:29 +0000)]
Delete old files.
Dr. Stephen Henson [Wed, 15 Aug 2007 13:35:51 +0000 (13:35 +0000)]
Move fips-1.0/ files to fips/
Dr. Stephen Henson [Wed, 15 Aug 2007 12:37:34 +0000 (12:37 +0000)]
Update to include fips_locl.h so WIN32 build can pick it up.
Dr. Stephen Henson [Wed, 15 Aug 2007 00:36:05 +0000 (00:36 +0000)]
Indicate failure if any selftest fails.
Increase keysizes in fips_test_suite
Dr. Stephen Henson [Tue, 14 Aug 2007 16:00:52 +0000 (16:00 +0000)]
Fix remaining error code discrepancies.
Dr. Stephen Henson [Tue, 14 Aug 2007 13:33:33 +0000 (13:33 +0000)]
Fix more error codes.
Dr. Stephen Henson [Tue, 14 Aug 2007 13:20:42 +0000 (13:20 +0000)]
More function code correction.
Dr. Stephen Henson [Tue, 14 Aug 2007 13:17:28 +0000 (13:17 +0000)]
Ensure seed does not match key and fixup error codes.
Dr. Stephen Henson [Mon, 13 Aug 2007 18:35:04 +0000 (18:35 +0000)]
Make FIPS cipher alias work again.
Dr. Stephen Henson [Mon, 13 Aug 2007 18:02:52 +0000 (18:02 +0000)]
Enforce minimum key sizes in FIPS mode.
Dr. Stephen Henson [Mon, 13 Aug 2007 13:28:31 +0000 (13:28 +0000)]
Include modulus sanity checks.
Dr. Stephen Henson [Mon, 13 Aug 2007 13:21:08 +0000 (13:21 +0000)]
Update DSA selftest with data from NIST test vectors.
Andy Polyakov [Thu, 2 Aug 2007 20:42:33 +0000 (20:42 +0000)]
Platform check in FIPS_mode_set.
Andy Polyakov [Thu, 2 Aug 2007 20:41:13 +0000 (20:41 +0000)]
Remove options in ./config.
Andy Polyakov [Wed, 1 Aug 2007 14:22:36 +0000 (14:22 +0000)]
Erroneously omitted code from "jumbo framework update."
Andy Polyakov [Wed, 1 Aug 2007 11:49:16 +0000 (11:49 +0000)]
Typo in fipsld.
Andy Polyakov [Wed, 1 Aug 2007 11:33:17 +0000 (11:33 +0000)]
Jumbo framework update.
Andy Polyakov [Wed, 1 Aug 2007 11:22:23 +0000 (11:22 +0000)]
Typos in ./config [from HEAD].
PR: 1563
Andy Polyakov [Mon, 30 Jul 2007 16:44:12 +0000 (16:44 +0000)]
aes-x86_64 update [from HEAD].
Andy Polyakov [Fri, 27 Jul 2007 20:36:09 +0000 (20:36 +0000)]
Respect ISO aliasing rules.
PR: 1296
Andy Polyakov [Fri, 27 Jul 2007 18:22:40 +0000 (18:22 +0000)]
AES for IA64 update [from HEAD].
Andy Polyakov [Thu, 26 Jul 2007 16:46:54 +0000 (16:46 +0000)]
Allow for extrnal DllMain.
Dr. Stephen Henson [Wed, 25 Jul 2007 23:38:11 +0000 (23:38 +0000)]
Extend do_fips to detect processor from %PROCESSOR_ARCHITECTURE% environment
variable and support no-asm command line option for WIN32.
Andy Polyakov [Wed, 25 Jul 2007 12:38:35 +0000 (12:38 +0000)]
x86 perlasm updates [from HEAD].
Dr. Stephen Henson [Tue, 24 Jul 2007 18:27:35 +0000 (18:27 +0000)]
Generate and use assembly language files in WIN32 build.
Andy Polyakov [Tue, 24 Jul 2007 15:42:13 +0000 (15:42 +0000)]
Throw in bn_mul_mont for x86_64.
Andy Polyakov [Tue, 24 Jul 2007 15:29:21 +0000 (15:29 +0000)]
Throw in bn_mul_mont for x86.
Andy Polyakov [Tue, 24 Jul 2007 15:07:51 +0000 (15:07 +0000)]
Allow for bn_mul_mont assembler.
Andy Polyakov [Tue, 24 Jul 2007 14:41:03 +0000 (14:41 +0000)]
Configure update from 098.
Andy Polyakov [Mon, 23 Jul 2007 20:42:50 +0000 (20:42 +0000)]
s390x assembler pack.
Andy Polyakov [Mon, 23 Jul 2007 16:35:30 +0000 (16:35 +0000)]
Typo in EXCL_OBJ list
Andy Polyakov [Mon, 23 Jul 2007 16:18:36 +0000 (16:18 +0000)]
x86*cpuid update [from HEAD].
Andy Polyakov [Mon, 23 Jul 2007 16:10:06 +0000 (16:10 +0000)]
Optimized OPENSSL_cleanse [from HEAD].
Andy Polyakov [Mon, 23 Jul 2007 15:13:51 +0000 (15:13 +0000)]
aes-586.pl from HEAD.
Andy Polyakov [Mon, 23 Jul 2007 15:12:20 +0000 (15:12 +0000)]
Synchronize x86 perlasm with HEAD.
Andy Polyakov [Mon, 23 Jul 2007 14:56:01 +0000 (14:56 +0000)]
Add AES x86_64 assembler module.
Andy Polyakov [Mon, 23 Jul 2007 14:42:12 +0000 (14:42 +0000)]
Add SHA x86_64 assembler.
Andy Polyakov [Mon, 23 Jul 2007 14:21:42 +0000 (14:21 +0000)]
x86_64-xlate.pl from HEAD.
Andy Polyakov [Mon, 23 Jul 2007 14:15:36 +0000 (14:15 +0000)]
md32_common.h update from HEAD.
Andy Polyakov [Mon, 23 Jul 2007 14:13:14 +0000 (14:13 +0000)]
Decommission md5-sparcv9 module.
Dr. Stephen Henson [Mon, 23 Jul 2007 11:54:47 +0000 (11:54 +0000)]
Delete obsolete files.
Andy Polyakov [Sun, 22 Jul 2007 20:53:17 +0000 (20:53 +0000)]
Framework updates.
Dr. Stephen Henson [Sat, 21 Jul 2007 20:18:47 +0000 (20:18 +0000)]
For Unix fips builds...
1. Make shared library build default.
2. Fix libcrypto build to work with shared builds.
3. Link fips utilities to fipscanister.o except for fipsdso builds.
Dr. Stephen Henson [Sat, 21 Jul 2007 12:07:09 +0000 (12:07 +0000)]
Install fipscanister.o and friends. Disable warning halt in VC++ build.
Dr. Stephen Henson [Sat, 21 Jul 2007 00:15:15 +0000 (00:15 +0000)]
Don't install docs by default.
Dr. Stephen Henson [Sat, 21 Jul 2007 00:14:02 +0000 (00:14 +0000)]
Change fips build default install location so it doesn't overwrite any
existing OpenSSL installation.
Dr. Stephen Henson [Fri, 20 Jul 2007 22:23:11 +0000 (22:23 +0000)]
Link fips utils against fipscanister.lib only except for dso builds.
Add --with-fipslibdir option to Configure.
Dr. Stephen Henson [Thu, 19 Jul 2007 21:44:25 +0000 (21:44 +0000)]
Typo.
Dr. Stephen Henson [Thu, 19 Jul 2007 16:45:31 +0000 (16:45 +0000)]
Add error checking to script.
Dr. Stephen Henson [Thu, 19 Jul 2007 16:11:21 +0000 (16:11 +0000)]
Initial fips WIN32 compilation batch file.
Dr. Stephen Henson [Thu, 19 Jul 2007 12:24:01 +0000 (12:24 +0000)]
Use X9.31 keygen for signature test.
Dr. Stephen Henson [Thu, 19 Jul 2007 12:17:56 +0000 (12:17 +0000)]
Add SSE2 support to VC++ build. Update MASM script.
Andy Polyakov [Mon, 16 Jul 2007 14:02:52 +0000 (14:02 +0000)]
shlib_wrap.sh update [from HEAD].
Andy Polyakov [Mon, 16 Jul 2007 12:23:55 +0000 (12:23 +0000)]
Bourne shell portability fix.
Andy Polyakov [Mon, 16 Jul 2007 10:00:36 +0000 (10:00 +0000)]
Framework updates.
Dr. Stephen Henson [Mon, 16 Jul 2007 00:09:44 +0000 (00:09 +0000)]
Check return code properly in fputs (< 0 is error).
Dr. Stephen Henson [Sun, 15 Jul 2007 21:27:34 +0000 (21:27 +0000)]
Update test script generator for Win32.
Dr. Stephen Henson [Sun, 15 Jul 2007 16:50:34 +0000 (16:50 +0000)]
include openssl/fips.h in sha1dgst.c
Dr. Stephen Henson [Sun, 15 Jul 2007 16:12:29 +0000 (16:12 +0000)]
Update .cvsignore
Dr. Stephen Henson [Sun, 15 Jul 2007 16:10:46 +0000 (16:10 +0000)]
Tolerate DigestInfo with absent parameters in FIPS mode.
Dr. Stephen Henson [Sun, 15 Jul 2007 12:06:23 +0000 (12:06 +0000)]
Add selftest check to SHA1 routine.
Dr. Stephen Henson [Sun, 15 Jul 2007 12:01:54 +0000 (12:01 +0000)]
Enhance mkfipsscr.pl to handle different testvector paths and perform
sanity checks.
Make AES/TDES algorithm test programs quiet if VERBOSE is zero.
Dr. Stephen Henson [Thu, 12 Jul 2007 08:20:21 +0000 (08:20 +0000)]
Update Windows build system to use AES assembler and standard assembly
language routines in FIPS mode compiles.
Dr. Stephen Henson [Wed, 11 Jul 2007 11:53:20 +0000 (11:53 +0000)]
Updates to WIN32 build system to make FIPS build work again.
Dr. Stephen Henson [Wed, 11 Jul 2007 00:11:09 +0000 (00:11 +0000)]
Typo.
Dr. Stephen Henson [Tue, 10 Jul 2007 22:02:02 +0000 (22:02 +0000)]
Delete old duplicate files.
Dr. Stephen Henson [Tue, 10 Jul 2007 21:37:24 +0000 (21:37 +0000)]
Update dependencies.
Dr. Stephen Henson [Tue, 10 Jul 2007 21:24:32 +0000 (21:24 +0000)]
Use common source files for FIPS mode and utilize same optimizations.
Andy Polyakov [Sun, 8 Jul 2007 19:41:38 +0000 (19:41 +0000)]
Shut up memory debuggers complaining about AES x86 assembler module
[from stable].
PR: 1508,1320
Andy Polyakov [Sun, 8 Jul 2007 19:20:48 +0000 (19:20 +0000)]
EVP_*_cfb1 was broken [from HEAD].
PR: 1318
Andy Polyakov [Sun, 8 Jul 2007 18:55:51 +0000 (18:55 +0000)]
bn_mul_recursive doesn't handle all cases correctly, which results in
BN_mul failures at certain key-length mixes [from HEAD].
PR: 1427
Andy Polyakov [Sat, 7 Jul 2007 20:12:12 +0000 (20:12 +0000)]
Typo in str_lib.c [from HEAD].
PR: 1177
Dr. Stephen Henson [Mon, 2 Jul 2007 12:10:06 +0000 (12:10 +0000)]
Update ordinals.
Dr. Stephen Henson [Mon, 2 Jul 2007 11:27:52 +0000 (11:27 +0000)]
Check selftest in rand too.
Dr. Stephen Henson [Mon, 2 Jul 2007 11:22:50 +0000 (11:22 +0000)]
Check selftest status in all crypto operations and abort with
a fatal error on failure.
Dr. Stephen Henson [Sun, 1 Jul 2007 23:19:15 +0000 (23:19 +0000)]
Modify AES and 3DES selftests to use EVP.
Dr. Stephen Henson [Sun, 1 Jul 2007 17:58:15 +0000 (17:58 +0000)]
Move 3DES EVP inside FIPS module and modify algorithm tests to use it.
Dr. Stephen Henson [Sun, 1 Jul 2007 12:53:10 +0000 (12:53 +0000)]
Changes to make AES algorithm test work via EVP.
Dr. Stephen Henson [Sun, 1 Jul 2007 00:08:42 +0000 (00:08 +0000)]
Add enc_min.c file.
Dr. Stephen Henson [Sun, 1 Jul 2007 00:07:25 +0000 (00:07 +0000)]
Move minimal EVP_CIPHER implementation into FIPS library. Not used by
any FIPS applications yet.
Andy Polyakov [Fri, 29 Jun 2007 13:15:33 +0000 (13:15 +0000)]
bn_mont.c fix [from HEAD].
Dr. Stephen Henson [Sat, 23 Jun 2007 00:02:25 +0000 (00:02 +0000)]
Make fips test suite script halt on errors.